235 matches found
EUVD-2019-14907
Malware in sbrugna...
EUVD-2020-20654
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986728)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986728 advisory. In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix memory leak on object td Two error return paths are neglecting to free allocat...
EUVD-2023-58674
Malicious code in bioql PyPI...
Malicious code in @com-td-aacs/td-emerald-standards (npm)
The package @com-td-aacs/td-emerald-standards was found to contain malicious code...
Malicious code in @com-td-aacs/td (npm)
The package @com-td-aacs/td was found to contain malicious code...
Malicious code in hawk-td-mocks (npm)
The package hawk-td-mocks was found to contain malicious code...
Malicious code in @zalastax/nolb-react-td (npm)
The package @zalastax/nolb-react-td was found to contain malicious code...
MAL-2025-22289 Malicious code in hawk-td-mocks (npm)
The package hawk-td-mocks was found to contain malicious code...
MAL-2025-7132 Malicious code in @com-td-aacs/td (npm)
The package @com-td-aacs/td was found to contain malicious code...
CVE-2023-22654
Client-side enforcement of server-side security issue exists in T Corporation and ESPEC MIC CORP. data logger products, which may lead to an arbitrary script execution on a logged-in user's web browser. Affected products and versions are as follows: T Corporation data logger products TR-71W/72W a...
CVE-2023-23545
Missing authentication for critical function exists in T Corporation and ESPEC MIC CORP. data logger products, which may allow a remote unauthenticated attacker to alter the product settings without authentication. Affected products and versions are as follows: T Corporation data logger products...
SUSE CVE-2025-37882
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix isochronous Ring Underrun/Overrun event handling The TRB pointer of these events points at enqueue at the time of error occurrence on xHCI 1.1+ HCs or it's NULL on older ones. By the time we are handling the event,...
CVE-2025-37882
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix isochronous Ring Underrun/Overrun event handling The TRB pointer of these events points at enqueue at the time of error occurrence on xHCI 1.1+ HCs or it's NULL on older ones. By the time we are handling the event,...
UBUNTU-CVE-2025-37882
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix isochronous Ring Underrun/Overrun event handling The TRB pointer of these events points at enqueue at the time of error occurrence on xHCI 1.1+ HCs or it's NULL on older ones. By the time we are handling the event,...
CVE-2025-22023
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Don't skip on Stopped - Length Invalid Up until commit d56b0b2ab142 "usb: xhci: ensure skipped isoc TDs are returned when isoc ring is stopped" in v6.11, the driver didn't skip missed isochronous TDs when handling...
CVE-2025-22023
CVE-2025-22023 concerns the Linux kernel USB xHCI driver. The issue arises from not skipping missed isochronous TDs when handling Stopped/Stopped-Length-Invalid events, causing the ring to potentially stall and the affected TDs to be cancelled incorrectly. A patch (commit d56b0b2ab142) introduced...
VulnCheck KEV: CVE-2024-7339
A vulnerability has been found in TVT DVR TD-2104TS-CL, DVR TD-2108TS-HP, Provision-ISR DVR SH-4050A5-5LMM and AVISION DVR AV108T and classified as problematic. This vulnerability affects unknown code of the file /queryDevInfo. The manipulation leads to information disclosure. The attack can be...
Malicious code in td-emerald-standards (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b2f97f10309683aa0addae921845bdf8ce584670d8640544b7eeb2c41501e7af The OpenSSF Package Analysis project identified 'td-emerald-standards' @ 6.6.6 npm as malicious. It is considered malicious because: - The packa...
MAL-2024-8725 Malicious code in td-emerald-standards (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b2f97f10309683aa0addae921845bdf8ce584670d8640544b7eeb2c41501e7af The OpenSSF Package Analysis project identified 'td-emerald-standards' @ 6.6.6 npm as malicious. It is considered malicious because: - The packa...